| Commit message (Collapse) | Author | Age |
|---|
| |
|
|
| |
Change-Id: If6e24a7bfc3cc866e3d3f442990aec03f8827c35
|
| |
|
|
| |
Change-Id: Id19a6f554b6ebd5a5aa52d24616afa78f59ad2ee
|
| |
|
|
|
|
|
| |
* Turns out we don't actually need to use this as /proc/mac_wifi and mac_bt can turn into normal mac address values just with hex dumping
* Remove bt_mac_prop as we can just set the mac path in vendor_prop.mk
Change-Id: I23665cdd5d39d5e090694cff5a63f55ecb9ea334
|
| |
|
|
| |
Change-Id: Ibc6eed2018314e79f3f18749cedd9852c82a8a66
|
| |
|
|
|
|
| |
* It would get disabled anyway when bootloader is unlocked, but this way makes safetynet pass even when unlocked
Change-Id: I2dfe641bf60e0409f290b7b31492df00568c9916
|
| |
|
|
|
|
|
|
| |
* Add back the fstab contexts to prevent some vfat denials
* Remove a lot of not needed addresses
* Create a domain for double tap to wake to not let the powerhal access all the sysfs files
Change-Id: I44dfc5e9903eb562748215541f2d71f9a3d111d7
|
| |
|
|
|
|
|
|
|
|
| |
* genfs_context cleanup after b5b41d341dd744c40d3908550daaafcee6fe7b4b in which it has randomly been imported from Marlin
* Slightly cleanup indentation
* Remove a lot of domains which were being used in genfs_context as most of it is already labelled differently in qcom common sepolicy and already addressed
* Remove violators where not needed
* Remove some old properties we're not using anymore
Change-Id: Ic72853dfaf71ba3f0596e75d1bdd5b5c93cd70be
|
| |
|
|
|
|
|
|
| |
* They won't make the build fail anyway
* Probably just a temporarely thing
Change-Id: I4822b4eeef8cb3381a5721da8cc6b382898e6c4a
Signed-off-by: Davide Garberi <dade.garberi@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Change-Id: I71e47d5f203adb7e28d37447e19a8041a1d02840
msm8996-common: PocketMode: Apply LineageOS rebrand
Change-Id: I1de627062f56bd125f430033e8bb7aad8fe48f69
msm8996-common: pocketmode: Bump sdk version
Change-Id: Ic521e380868bdc886e15c6a8a472564a98dbc094
msm8996-common: PocketMode: Explicitly include Android support libs
* Fixes non-jack build
Change-Id: I9d8346193577c7be218e12efb20f52ca9946eb14
msm8996-common: PocketMode: Properly depend on Lineage SDK
* This is actually the proper library to include
(only spotted while buidling with Jack disabled,
because app compilation was failing).
Change-Id: Ib61f93704c6411a4cb1f91d9e8693a1775934037
msm8996-common: PocketMode: Remove useless cast
Change-Id: I655b0b80ccafdaae422a2464d2b8409f70be0e8c
msm8996-common: Adapt to Zuk
Change-Id: I9050faac37de0a8392b31fed5c3562d4553c546f
msm8996-common: Set LOCAL_SDK_VERSION where possible.
This change sets LOCAL_SDK_VERSION for all packages where
this is possible without breaking the build, and
LOCAL_PRIVATE_PLATFORM_APIS := true otherwise.
Setting one of these two will be made required soon, and this
is a change in preparation for that. Not setting LOCAL_SDK_VERSION
makes the app implicitly depend on the bootclasspath, which is
often not required. This change effectively makes depending on
private apis opt-in rather than opt-out.
Test: make relevant packages
Bug: 73535841
Change-Id: Ic906adbd670c4dbfe2cdf0b71cdbeaf9ac08a27e
msm8996-common: sepolicy: Address a fingerprint denial
Change-Id: I07c75d58357f7eea2dcc68ed80dacbab76bb30f5
Signed-off-by: Davide Garberi <dade.garberi@gmail.com>
|
| |
|
|
|
| |
Change-Id: Id73515a55b1082283789cffbd2aafecaada4e06c
Signed-off-by: Davide Garberi <dade.garberi@gmail.com>
|
| |
|
|
| |
* And system_app and vold fixup.
|
| | |
|
| |
|
|
| |
* avc: denied { set } for property=service.adb.root pid=1892 uid=1000 gid=1000 scontext=u:r:system_app:s0 tcontext=u:object_r:shell_prop:s0 tclass=property_service permissive=1
|
| |
|
|
|
| |
* Remove never-allow rules and enable SELinux permissive for now.
* Enable PRODUCT_FULL_TREBLE_OVERRIDE.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* avc: denied { write } for pid=484 comm=bluetooth@1.0-s name=bluedroid dev=sda10 ino=3465222 scontext=u:r:hal_bluetooth_default:s0 tcontext=u:object_r:bluetooth_data_file:s0 tclass=dir permissive=0
Fix ims SELinux denials:
* avc: denied { set } for property=ctl.imsrcsd pid=715 uid=1000 gid=1000 scontext=u:r:ims:s0 tcontext=u:object_r:ctl_default_prop:s0 tclass=property_service permissive=0
Fix vold SELinux denials:
* avc: denied { open } for path="/data/system_de/0/spblob/01e7bcfa0f8c0631.secdis" dev="sda10" ino=3031052 scontext=u:r:vold:s0 tcontext=u:object_r:system_data_file:s0 tclass=file permissive=0
Fix system_app SELinux denials:
* avc: denied { call } for pid=6251 comm=4173796E635461736B20233130 scontext=u:r:system_app:s0 tcontext=u:r:wificond:s0 tclass=binder permissive=0
* avc: denied { find } for service=installd pid=6251 uid=1000 scontext=u:r:system_app:s0 tcontext=u:object_r:installd_service:s0 tclass=service_manager permissive=0
|
| |
|
|
| |
Signed-off-by: Davide Garberi <dade.garberi@gmail.com>
|
| |
|
|
|
|
|
| |
* Lots of parts are from the old one so thanks to everyone who contributed to that one
* Still it doesn't boot in enforcing though
Signed-off-by: dd3boh <dade.garberi@gmail.com>
|
| |
|
|
| |
Signed-off-by: dd3boh <dade.garberi@gmail.com>
|
| | |
|
| |
|
